cybersecurity - Security Ticks

WebCopilot: Open-source automation tool enumerates subdomains, detects bugs

cybersecurity, Don't miss, GitHub, Hot stuff, News, open source, penetration testing, scanning, software / SecurityTicks

WebCopilot: Open-source automation tool enumerates subdomains, detects bugs 2024-03-21 at 07:31 By Mirko Zorz WebCopilot is an open-source automation tool that enumerates a target’s subdomains and discovers bugs using various free tools. It simplifies the application security workflow and reduces reliance on manual scripting. “I built this solution to streamline the application security process, specifically […]

WebCopilot: Open-source automation tool enumerates subdomains, detects bugs Read More »

Using cloud development environments to secure source code

Cloud, code, Coder, cybersecurity, DevOps, Don't miss, Hot stuff, programming, software development, Video / SecurityTicks

Using cloud development environments to secure source code 2024-03-21 at 07:01 By Help Net Security In this Help Net Security video, Rob Whiteley, CEO at Coder, discusses the cloud development environment (CDE) technology landscape and its benefits. From the earliest stages of writing code to deploying finalized applications, CDEs are reimagining the developer experience, gaining

Using cloud development environments to secure source code Read More »

Malware stands out as the fastest-growing threat of 2024

Compliance, cybersecurity, data security, News, report, survey, Thales, threats / SecurityTicks

Malware stands out as the fastest-growing threat of 2024 2024-03-21 at 06:01 By Help Net Security 93% of IT professionals believe security threats are increasing in volume or severity, a significant rise from 47% last year, according to Thales. The number of enterprises experiencing ransomware attacks surged by over 27% in the past year. Despite

Malware stands out as the fastest-growing threat of 2024 Read More »

Growing AceCryptor attacks in Europe

cybercrime, cybersecurity, Email, ESET, EU, Europe, Malware, News, Remote Access Trojan / SecurityTicks

Growing AceCryptor attacks in Europe 2024-03-20 at 13:01 By Help Net Security ESET Research has recorded a considerable increase in AceCryptor attacks, with detections tripling between the first and second halves of 2023. In recent months, researchers registered a significant change in how AceCryptor is used, namely that the attackers spreading Rescoms (also known as

Growing AceCryptor attacks in Europe Read More »

Red teaming in the AI era

Artificial Intelligence, cybersecurity, Don't miss, Expert analysis, Expert corner, Hot stuff, Lakera, News, opinion, red team, software / SecurityTicks

Red teaming in the AI era 2024-03-20 at 07:31 By Help Net Security As AI gets baked into enterprise tech stacks, AI applications are becoming prime targets for cyber attacks. In response, many cybersecurity teams are adapting existing cybersecurity practices to mitigate these new threats. One such practice measure is red teaming: the effort to

Red teaming in the AI era Read More »

1% of users are responsible for 88% of data loss events

cybersecurity, data, data loss prevention, News, Proofpoint, report, survey / SecurityTicks

1% of users are responsible for 88% of data loss events 2024-03-20 at 07:01 By Help Net Security Data loss is a problem stemming from the interaction between humans and machines, and ‘careless users’ are much more likely to cause those incidents than compromised or misconfigured systems, according to Proofpoint. While organizations are investing in

1% of users are responsible for 88% of data loss events Read More »

Security best practices for GRC teams

automation, Compliance, cybersecurity, Don't miss, GRC, Hot stuff, regulation, Secureframe, standards, Video / SecurityTicks

Security best practices for GRC teams 2024-03-20 at 06:31 By Help Net Security Even with the best-of-the-best tools and tech stack monitoring vulnerabilities, every security executive and GRC leader should still have some layer of paranoia. If they don’t, that’s a huge issue. In this Help Net Security video, Shrav Mehta, CEO at Secureframe, talks

Security best practices for GRC teams Read More »

API environments becoming hotspots for exploitation

Akamai, API security, cybersecurity, News, report, survey / SecurityTicks

API environments becoming hotspots for exploitation 2024-03-20 at 06:01 By Help Net Security A total of 29% of web attacks targeted APIs over 12 months (January through December 2023), indicating that APIs are a focus area for cybercriminals, according to Akamai. API integration amplifies risk exposure for enterprises APIs are at the heart of digital

API environments becoming hotspots for exploitation Read More »

Surviving the “quantum apocalypse” with fully homomorphic encryption

cybersecurity, Don't miss, Encryption, Expert analysis, Expert corner, Hot stuff, News, opinion, Privacy, quantum computing, Zama / SecurityTicks

Surviving the “quantum apocalypse” with fully homomorphic encryption 2024-03-19 at 10:04 By Help Net Security In the past few years, an increasing number of tech companies, organizations, and even governments have been working on one of the next big things in the tech world: successfully building quantum computers. These actors see a lot of potential

Surviving the “quantum apocalypse” with fully homomorphic encryption Read More »

Outsmarting cybercriminal innovation with strategies for enterprise resilience

Artificial Intelligence, cybercriminals, cybersecurity, Don't miss, Features, GISEC, Hot stuff, machine learning, News, Nokia, opinion, regulation, strategy, supply chain attacks, Threat Intelligence, threats, UAE / SecurityTicks

Outsmarting cybercriminal innovation with strategies for enterprise resilience 2024-03-19 at 07:19 By Mirko Zorz In this Help Net Security interview, Pedro Cameirão, Head of Cyber Defense Center at Nokia, discusses emerging cybersecurity trends for 2024 and advises enterprises on preparation strategies. Cameirão will speak at GISEC Global 2024 in Dubai, a conference and exhibition bringing

Outsmarting cybercriminal innovation with strategies for enterprise resilience Read More »

Why is everyone talking about certificate automation?

automation, certificates, cybersecurity, Don't miss, GlobalSign, Hot stuff, Video / SecurityTicks

Why is everyone talking about certificate automation? 2024-03-19 at 07:19 By Help Net Security Digital Certificates are not new. In this Help Net Security video, Andreas Brix, Senior Program Manager at GlobalSign, discusses why they are back in the news and what you should do about it. The post Why is everyone talking about certificate

Why is everyone talking about certificate automation? Read More »

Harnessing the power of privacy-enhancing tech for safer AI adoption

Artificial Intelligence, cybersecurity, data, Don't miss, Enveil, framework, Hot stuff, machine learning, Privacy, regulation, Video / SecurityTicks

Harnessing the power of privacy-enhancing tech for safer AI adoption 2024-03-18 at 12:01 By Help Net Security A consensus on regulatory AI frameworks seems distant. Yet, the imperative for secure and responsible AI deployment cannot be overstated. How can leaders proactively address AI adoption challenges while waiting for regulatory clarity? In this Help Net Security

Harnessing the power of privacy-enhancing tech for safer AI adoption Read More »

Public anxiety mounts over critical infrastructure resilience to cyber attacks

critical infrastructure, cybersecurity, Government, MITRE, News, report, risk, survey, The Harris Poll / SecurityTicks

Public anxiety mounts over critical infrastructure resilience to cyber attacks 2024-03-18 at 12:01 By Help Net Security With temporary failures of critical infrastructure on the rise in the recent years, 81% of US residents are worried about how secure critical infrastructure may be, according to MITRE and The Harris Poll. Public views cyberattacks as greatest

Public anxiety mounts over critical infrastructure resilience to cyber attacks Read More »

The dark side of GenAI

cybersecurity, Fortra, generative AI, SECURITI.ai, Sonatype, Video / SecurityTicks

The dark side of GenAI 2024-03-18 at 06:03 By Help Net Security Beyond traditional AI models, generative AI (GenAI) can create new content, images, and even entire scenarios from scratch. While this technology holds immense promise across various sectors, it also introduces challenges and threats to cybersecurity. In this round-up from Help Net Security, cybersecurity

The dark side of GenAI Read More »

Key MITRE ATT&CK techniques used by cyber attackers

attacks, Cloud, credentials, cybersecurity, Email, identity, News, Ransomware, Red Canary, report / SecurityTicks

Key MITRE ATT&CK techniques used by cyber attackers 2024-03-15 at 11:01 By Help Net Security While the threat landscape continues to shift and evolve, attackers’ motivations do not, according to a Red Canary report. The classic tools and techniques adversaries deploy remain consistent–with some notable exceptions. The report tracked MITRE ATT&CK techniques that adversaries abuse

Key MITRE ATT&CK techniques used by cyber attackers Read More »

90% of exposed secrets on GitHub remain active for at least five days

cybersecurity, Data leak, GitGuardian, GitHub, News, report, survey / SecurityTicks

90% of exposed secrets on GitHub remain active for at least five days 2024-03-15 at 07:30 By Help Net Security 12.8 million new secrets occurrences were leaked publicly on GitHub in 2023, +28% compared to 2022, according to GitGuardian. Remarkably, the incidence of publicly exposed secrets has quadrupled since the company started reporting in 2021.

90% of exposed secrets on GitHub remain active for at least five days Read More »

Human risk factors remain outside of cybersecurity pros’ control

Artificial Intelligence, cybercrime, cybersecurity, Mimecast, News, report, survey / SecurityTicks

Human risk factors remain outside of cybersecurity pros’ control 2024-03-15 at 07:00 By Help Net Security Cyber threats are growing at an unprecedented pace, and the year ahead is fraught with cybercrime and incidents anticipated ahead of the busy election year where over 50 countries head to the polls, according to Mimecast. With new threats

Human risk factors remain outside of cybersecurity pros’ control Read More »

AI and the future of corporate security

access control, Artificial Intelligence, cybersecurity, Don't miss, Everbridge, fraud, Hot stuff, Insider Threat, threats, Video / SecurityTicks

AI and the future of corporate security 2024-03-15 at 06:30 By Help Net Security In this Help Net Security video, Tracy Reinhold, CSO at Everbridge, discusses why AI technology must be embraced while also exploring some guardrails that must be in place to protect organizations against threats using AI to penetrate facilities. The post AI

AI and the future of corporate security Read More »

First EU country adopts quantum-resistant technology

cybersecurity, security / SecurityTicks

First EU country adopts quantum-resistant technology 2024-03-14 at 19:36 By Cointelegraph by Zoltan Vardai The QAN stack will serve as a key component in the country’s post-quantum security layer. This article is an excerpt from Cointelegraph.com News View Original Source

First EU country adopts quantum-resistant technology Read More »

MobSF: Open-source security research platform for mobile apps

Android, code analysis, cybersecurity, Don't miss, GitHub, Hot stuff, iOS, mobile, mobile apps, mobile devices, News, open source, software / SecurityTicks

MobSF: Open-source security research platform for mobile apps 2024-03-14 at 07:30 By Mirko Zorz The Mobile Security Framework (MobSF) is an open-source research platform for mobile application security, encompassing Android, iOS, and Windows Mobile. MobSF can be used for mobile app security assessment, penetration testing, malware analysis, and privacy evaluation. The Static Analyzer is adept

MobSF: Open-source security research platform for mobile apps Read More »